NUEVA VARIANTE DE VBS RUNNER C QUE PASAMOS A CONTROLAR CON EL ELISTARA

Otra muestra recibida para analizar, pasa a ser controla especificamente a partir del ELISTARA 32.89

El preanalisis de virustotal ofrece el siguiente informe:

MD5 b7272ca873cef46713fefd7b1ef3b53d
SHA1 66450591ceefdacc2991a18ac4e2f9c7e7b26c18
SHA256 7634a6eb3227684ea081920e23e7a92e2ae148efda93fb3479f3f40aabacd42f
ssdeep384:zEmrWx0Z6EYEtDP9EjEgAONwr5CJxE/EYeEYzf1xXo:r
File size 69.0 KB ( 70619 bytes )
SHA256: 7634a6eb3227684ea081920e23e7a92e2ae148efda93fb3479f3f40aabacd42f
File name: ukjaslmqwplaskmzmcnvbv8514317188322067651.vbs
Detection ratio: 25 / 57
Analysis date: 2015-09-07 19:11:21 UTC ( 14 hours, 15 minutes ago )

0 1
Antivirus Result Update
ALYac Worm.VBS.Dunihi.BC 20150907
AVG BackDoor.Generic_c.AHUH 20150907
Ad-Aware Worm.VBS.Dunihi.BC 20150907
Arcabit Worm.VBS.Dunihi.BC 20150905
Avast VBS:Decode-UL [Trj] 20150907
BitDefender Worm.VBS.Dunihi.BC 20150907
Bkav W32.MassiveVBS.TC.Worm 20150907
ESET-NOD32 VBS/Agent.NIA 20150907
Emsisoft Worm.VBS.Dunihi.BC (B) 20150907
F-Secure Worm.VBS.Dunihi.BC 20150907
GData Worm.VBS.Dunihi.BC 20150907
Ikarus Worm.VBS.Dunihi 20150907
K7AntiVirus NetWorm ( 0040f5d41 ) 20150907
K7GW NetWorm ( 0040f5d41 ) 20150907
Kaspersky HEUR:Worm.Script.Generic 20150907
McAfee Generic.xf 20150907
McAfee-GW-Edition Generic.xf 20150907
MicroWorld-eScan Worm.VBS.Dunihi.BC 20150907
Microsoft Worm:VBS/Jenxcus 20150907
Qihoo-360 virus.vbs.houdini.a 20150907
Tencent Vbs.Worm.Agent.Pdvr 20150907
TrendMicro VBS_JENXCUS.MJN 20150907
TrendMicro-HouseCall VBS_JENXCUS.MJN 20150907
VBA32 suspected of Malware.JS.Obfuscated 20150907
nProtect Worm.VBS.Dunihi.BC 20150907

Dicha version del ELISTARA 32.89 que la detecta y elimina, ya está disponible en huestra web

saludos

ms, 8-9-2015